Yahoo announced that 22 million login names may have been exposed after a data breach at Yahoo Japan last week. According to a statement released by Yahoo Japan, “We don’t know if the file [containing 22 million user IDs] was leaked or not, but we can’t deny the possibility, given the volume of traffic between our server and external terminals.”
The Office of the Australian Information Commissioner (OAIC) has made available a statement (20 May 2013) by Privacy Commissioner Timothy Pilgrim announcing that telecommunications provider Telstra has briefed the OAIC regarding "an incident involving the publication of documents online containing the details of some Telstra customers". Mr Pilgrim stated that he has launched an investigation into whether or not the incident breached the Privacy Act 1988 No. 119 (Cth) (the Act).
The Office of the Australian Information Commissioner (OAIC) has announced its participation in the first global International Internet Privacy Sweep along with 18 other privacy enforcement authorities. According to the OAIC, the Global Privacy Enforcement Network initiative will require an audit of each country's most popular websites to determine the accessibility and readability of their privacy policies.
The United States (US) Department of Homeland Security has issued a warning to corporations to be wary of cyberattacks. Reportedly, the objective of recent attacks has been to gain control of an organisation's networks or processes rather than to obtain data or trade secrets. According to the New York Times, senior officials warned the latest spate of attempted attacks targeted the administration systems of up to ten American energy companies.
The Australian House of Representatives Joint Select Committee on Cyber-Safety (JSCC) has announced that it has presented the report on its inquiry into cybersafety for senior Australians Cybersafety for Seniors: A Worthwhile Journey (March 2013) to parliament.
The Guardian reports that several of its Twitter accounts were hacked by the Syrian Electronic Army (SEA). The Guardian reportedly discovered that the Twitter accounts were accessed via phishing attacks, where account holders had clicked on bogus links.
The United Kingdom Information Commissioner's Office (ICO) has made available an undertaking (undated) which requires County Armagh based general practice The Burnett Practice (the Practice) to make changes to its handling of patient information after an ICO investigation found that the Practice had breached the Data Protection Act 1998.
The United States (US) Federal Trade Commission (FTC) has made available a final order (29 April 2013) settling allegations that umbilical cord blood and umbilical cord tissue banking services provider Cbr Systems Inc (Cbr) "failed to protect the security of customers' personal information and that its inadequate security practices led to a breach that exposed the [s]ocial [s]ecurity numbers and debit and credit card information of nearly 300,000 consumers". The matter relates to an incident in 2010 in which property containing consumers' personal information was stolen from the car of a Cbr employee.
The United States (US) Commodity Futures Trading Commission (CFTC) has made available a speech (30 April 2013) delivered by CFTC chairperson Gary Gensler before the CFTC technology advisory committee in which he references a recent social media hacking incident.
The Office of the Australian Information Commissioner (OAIC) has announced that Privacy Awareness Week commenced on 29 April 2013. Privacy Commissioner Timothy Pilgrim stated that Privacy Awareness Week was particularly significant, considering upcoming changes to the Privacy Act 1988 No. 119 (Cth) (the Privacy Act), and urged "private sector organisations and agencies to consider where they are at with preparations for the new laws". Mr Pilgrim added that "[e]arly preparation is definitely going to be key for compliance with the new requirements".
- Anti-Bribery & Anti-Corruption (105)
- Anti-Money Laundering (69)
- Business Ethics and Corporate Culture (124)
- Careful Communication and Proper Use of Computers (14)
- Code of Conduct (5)
- Competition (125)
- Confidentiality and Intellectual Property (20)
- Conflicts of Interest (13)
- Consumer Protection (218)
- Corporate Responsibility and Sustainability (174)
- Employment and Workplace Issues (271)
- Environment, Health & Safety (87)
- Financial Integrity (132)
- Government Contracting (13)
- Information Security (31)
- Insider Trading (69)
- Other (2)
- Privacy and Data Protection (152)
- Records Management (9)
- Respect in the Workplace (6)